Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=thepylontech.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
January 01, 2026
Valid Until
April 01, 2026
79 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
E3:C9:07:B9:43:E6:0D:9C:96:CB:85:FC:18:7D:FF:CC:4C:3A:90:2C:AD:2B:3F:A1:5E:B8:30:2E:AB:D0:37:41
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
valtrixclub.com
sarstedterweihnachtsmarkt.aikata.de
alpsadmin.ch
www.ancestralfood.com.br
www.ancestralpet.com.br
deepocean.anekonnect.io
astrosajwal.com
autoclarity.co.uk
bluckfamilyhistory.belgray.ca
dev-mobile.bestwallet.com
www.bmax.it
boostytech.com
play.brendancreates.com
www.careerscompass.org
claudialassoescritora.com
clinicez.in
choosing-myself-now.co.il
link.coincaex.com
coordyapp.com
app.crmvoro.com
privacy.dagonmetric.com
cabinet.dah-qa.top
daniel-huebner.com
app.deliverinperson.com
www.deweydentalok.com
tools.easegis.jp
epilazionelaserravenna.it
ph.eui.app
beta.fetchyfox.com
fit-n-beauty.ru
flyinghacker.com
ignis.forja-tech.com
ama.ghr-home.com
app.gmelius.com
link.cespq.gob.mx
guthealthlab.co.uk
holds.digital
fdl-stg.hopin.com
letsplay.icekode.com
vote.idnkhtw.space
link.ilikelm.com
careers.industrial-ia.com
prototype.itago.app
gnvbrasil.itapox.com
jderecipes.co.nz
www.jianfei.rest
dl.kids.justalk.com
dev-intranet.k-9apps.com
www.intranet.k-9apps.com
ilt.ksug.ai
www.lish-eikaiwa.jp
www.mahalohq.com
hindi.corona.mayamd.ai
mcpaccounting.com
minutiamobile.com
montrear.com
motoave.eu
pic-greentube.mentor.neccton.com
newblocks.app
gps.nisbusiness.com
niwipedia.com
noodlestreetlabs.com
openmidi.com
salesforce.orlo.in
www.penguincity.com
pinbin.io
pltruck-tracking.com
pockethavengames.com
powerliftinghenry.com
prevu.pro
www.queijodohimalaia.com.br
ng-fitness-tracker.ramtinmovahed.com
razemdlagoczalkowic.pl
restaurant-altiposcht.ch
revrut.com
richardsoncarcamo.com
ridesharelogger.com
www.roemerquartier.de
rugg3d.co.uk
www.rxgrad.com
ryan.com.mx
safechan.org
saveytm.com
mobile.sestradev.com
singinglessonsderby.com
sparkaspiration.com
svbenterprise.in
szymonpierchala.com
taskeenco.com
thaiproofai.space
thefinalheresy.com
thepylontech.com
typetales.utilitytoolshub.com
www.uat.vietbs.com
viewmyfolio.com
vinishreddy.com
test.vpsbihiya.com
www.yongjie.dev
zeetutoring.com
dev-auth.zeroin.dev
Other domains in certificate